216.73.216.86

CVE-2026-35021

· Published 06/04/2026 20:16 · Modified 07/04/2026 13:20

Labels: CVE-2026-35021 2026-04-06CVE-2026-35021CWE-78[email protected]

Essential information

Published
06/04/2026 20:16
Modified
07/04/2026 13:20
Author
Creator
CVSS
8.4 HIGH (v3) 8.4 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Anthropic Claude Code CLI and Claude Agent SDK contain an OS command injection vulnerability in the prompt editor invocation utility that allows attackers to execute arbitrary commands by crafting malicious file paths. Attackers can inject shell metacharacters such as $() or backtick expressions into file paths that are interpolated into shell commands executed via execSync. Although the file path is wrapped in double quotes, POSIX shell semantics (POSIX §2.2.3) do not prevent command substitution within double quotes, allowing injected expressions to be evaluated and resulting in arbitrary command execution with the privileges of the user running the CLI.

NVD status

Status
Undergoing Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
anthropic / claude code cli cpe:2.3:a:anthropic:claude_code_cli:*:*:*:*:*:*:*:*
anthropic / claude agent sdk cpe:2.3:a:anthropic:claude_agent_sdk:*:*:*:*:*:*:*:*

References